shell-security
CommunitySafer POSIX shell scripting in seconds.
Software Engineering#input-validation#command-injection#quoting#shell-security#POSIX#portable-scripts
Authorscruffydan
Version1.0.0
Installs0
System Documentation
What problem does it solve?
POSIX shell scripting often suffers from quoting errors, word splitting, and command-injection risks. This Skill provides practical guidance to write secure shell scripts across POSIX-compatible shells, reducing vulnerabilities and hard-to-trace bugs.
Core Features & Use Cases
- Safe quoting and parameter handling to prevent word splitting and glob expansion.
- Secure command construction, substitution, and use of built-in commands over external tools.
- Argument parsing safety and robust handling of user input to avoid injections and path traversal.
- Secure file operations and portable scripting practices that work across sh, dash, and ash.
Quick Start
Review a shell script and apply the guidelines to fix unsafe quoting, improve input validation, and harden command execution.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: shell-security Download link: https://github.com/scruffydan/AI-Agents/archive/main.zip#shell-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.